[Date Prev][Date Next] [Chronological] [Thread] [Top]

Restricting Object Classes of Entries Added

To: openldap-software@OpenLDAP.org
Subject: Restricting Object Classes of Entries Added
From: Christoph Neumann <enigma@apu.edu>
Date: Thu, 21 Feb 2002 16:09:00 -0800 (PST)

If a user has permission to add or remove entries from a tree, is it 
possible (in OpenLDAP) to restrict the entries added to a particular 
object class?

For example, suppose I have a user with add/remove access to the
"ou=Group,dc=example,dc=com" tree.  I only want that user to be able to
add entries that are of object class "posixGroup" and nothing else.

If this functionality is not included in OpenLDAP now, is it going to be
included in the future?

Thanks,
Christoph

Prev by Date: Replication problems
Next by Date: Re: pam/nss ldap authentication against ms exchange 5.5
Index(es):
- Chronological
- Thread